SUSE SLES12 Security Update : shim (SUSE-SU-2026:1414-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:1414-1 advisory. shim is updated to version 16.1: - shimstartimage: fix guid/handle pairing when uninstalling protocols - Fix uncompressed ipv6 netboot - fix test...

SUSE: Security Advisory (SUSE-SU-2026:20426-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-21283

Bridge versions 15.1.2, 16.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2022-0731

Improper Access Control IDOR in GitHub repository dolibarr/dolibarr prior to 16.0...

EUVD-2020-27409

Malware in sbrugna...

EUVD-2021-10127

Malware in sbrugna...

EUVD-2021-10154

Malware in sbrugna...

EUVD-2025-8371

Malicious code in bioql PyPI...

EUVD-2023-24027

Malicious code in bioql PyPI...

EUVD-2024-54321

Malicious code in bioql PyPI...

EUVD-2023-45497

Malicious code in bioql PyPI...

EUVD-2022-0823

Malicious code in bioql PyPI...

EUVD-2022-5993

Malicious code in bioql PyPI...

CVE-2022-0746

Business Logic Errors in GitHub repository dolibarr/dolibarr prior to 16.0...

BIT-DOLIBARR-2022-2060 Cross-site Scripting (XSS) - Stored in dolibarr/dolibarr

Cross-site Scripting XSS - Stored in GitHub repository dolibarr/dolibarr prior to 16.0...

CVE-2025-30783

CVE-2025-30783 describes a CSRF vulnerability in WP Google Review Slider (wp-google-places-review-slider), reportedly allowing an SQL Injection. Affected version range is WP Google Review Slider: from n/a through

WordPress plugin WP Google Review Slider 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site request...

CVE-2024-3303 Improper Neutralization of Input Used for LLM Prompting in GitLab

An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 17.6.5, starting from 17.7 prior to 17.7.4, and starting from 17.8 prior to 17.8.2, which allows an attacker to exfiltrate contents of a private issue using prompt injection...

PT-2024-16847 · Landray · Landray Ekp

Name of the Vulnerable Software and Affected Versions: Landray EKP versions up to 16.0 Description: A critical issue was found in the function delPreviewFile of the file "/sys/ui/sys ui component/sysUiComponent.do?method=delPreviewFile". The manipulation of the directoryPath argument leads to pat...

CVE-2024-3115 Exposure of Sensitive Information to an Unauthorized Actor in GitLab

An issue was discovered in GitLab EE affecting all versions starting from 16.0 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1 prior to 17.1.1, which allows an attacker to access issues and epics without having an SSO session using Duo Chat...